draft for partner permission grant model
This commit is contained in:
parent
5ef16c11d5
commit
b8cd633c5a
@ -3,76 +3,69 @@
|
||||
```mermaid
|
||||
flowchart TB
|
||||
|
||||
subgraph global
|
||||
style global fill:#eee
|
||||
subgraph external[ ]
|
||||
style external fill:#fff
|
||||
|
||||
role:global.admin[global.admin]
|
||||
subgraph global
|
||||
style global fill:#eee
|
||||
|
||||
role:global.admin[global.admin]
|
||||
end
|
||||
|
||||
subgraph partnerPerson
|
||||
style partnerPerson fill:#eee
|
||||
|
||||
role:partnerPerson.admin[global.admin]
|
||||
end
|
||||
|
||||
subgraph otherRelatedPerson
|
||||
style otherRelatedPerson fill:#eee
|
||||
|
||||
role:otherRelatedPerson.admin[global.admin]
|
||||
end
|
||||
|
||||
subgraph hsOfficeRelationship
|
||||
direction TB
|
||||
style hsOfficeRelationship fill:#eee
|
||||
|
||||
role:global.admin
|
||||
--> role:hsOfficeRelationship.owner[relationship.owner]
|
||||
--> role:hsOfficeRelationship.admin[relationship.admin]
|
||||
--> role:hsOfficeRelationship.agent[relationship.agent]
|
||||
--> role:hsOfficeRelationship.tenant[relationship.tenant]
|
||||
|
||||
role:partnerPerson.admin --> role:hsOfficeRelationship.agent
|
||||
role:otherRelatedPerson.admin --> role:hsOfficeRelationship.tenant
|
||||
end
|
||||
end
|
||||
|
||||
subgraph hsOfficeContact
|
||||
direction TB
|
||||
style hsOfficeContact fill:#eee
|
||||
subgraph internal[ ]
|
||||
style internal fill:#fff
|
||||
|
||||
role:hsOfficeContact.admin[contact.admin]
|
||||
--> role:hsOfficeContact.tenant[contact.tenant]
|
||||
--> role:hsOfficeContact.guest[contact.guest]
|
||||
end
|
||||
subgraph hsOfficePartner
|
||||
|
||||
subgraph hsOfficePerson
|
||||
direction TB
|
||||
style hsOfficePerson fill:#eee
|
||||
perm:hsOfficePartner.*{{partner.*}}
|
||||
role:hsOfficeRelationship.owner --> perm:hsOfficePartner.*
|
||||
|
||||
role:hsOfficePerson.admin[person.admin]
|
||||
--> role:hsOfficePerson.tenant[person.tenant]
|
||||
--> role:hsOfficePerson.guest[person.guest]
|
||||
end
|
||||
perm:hsOfficePartner.edit{{partner.edit}}
|
||||
role:hsOfficeRelationship.admin --> perm:hsOfficePartner.edit
|
||||
|
||||
subgraph hsOfficePartnerDetails
|
||||
direction TB
|
||||
perm:hsOfficePartner.view{{partner.view}}
|
||||
role:hsOfficeRelationship.tenant --> perm:hsOfficePartner.view
|
||||
end
|
||||
|
||||
perm:hsOfficePartnerDetails.*{{partner.*}}
|
||||
perm:hsOfficePartnerDetails.edit{{partner.edit}}
|
||||
perm:hsOfficePartnerDetails.view{{partner.view}}
|
||||
end
|
||||
subgraph hsOfficePartnerDetails
|
||||
direction TB
|
||||
|
||||
subgraph hsOfficePartner
|
||||
perm:hsOfficePartnerDetails.*{{partnerDetails.*}}
|
||||
role:hsOfficeRelationship.owner --> perm:hsOfficePartnerDetails.*
|
||||
|
||||
role:hsOfficePartner.owner[partner.owner]
|
||||
%% permissions
|
||||
role:hsOfficePartner.owner --> perm:hsOfficePartner.*{{partner.*}}
|
||||
role:hsOfficePartner.owner --> perm:hsOfficePartnerDetails.*{{partner.*}}
|
||||
%% incoming
|
||||
role:global.admin ---> role:hsOfficePartner.owner
|
||||
perm:hsOfficePartnerDetails.edit{{partnerDetails.edit}}
|
||||
role:hsOfficeRelationship.agent --> perm:hsOfficePartnerDetails.edit
|
||||
role:hsOfficeRelationship.agent ----> perm:hsOfficePartnerDetails.view
|
||||
|
||||
role:hsOfficePartner.admin[partner.admin]
|
||||
%% permissions
|
||||
role:hsOfficePartner.admin --> perm:hsOfficePartner.edit{{partner.edit}}
|
||||
role:hsOfficePartner.admin --> perm:hsOfficePartnerDetails.edit{{partner.edit}}
|
||||
%% incoming
|
||||
role:hsOfficePartner.owner ---> role:hsOfficePartner.admin
|
||||
%% outgoing
|
||||
role:hsOfficePartner.admin --> role:hsOfficePerson.tenant
|
||||
role:hsOfficePartner.admin --> role:hsOfficeContact.tenant
|
||||
perm:hsOfficePartnerDetails.view{{partnerDetails.view}}
|
||||
end
|
||||
|
||||
role:hsOfficePartner.agent[partner.agent]
|
||||
%% permissions
|
||||
role:hsOfficePartner.agent --> perm:hsOfficePartnerDetails.view{{partner.view}}
|
||||
%% incoming
|
||||
role:hsOfficePartner.admin ---> role:hsOfficePartner.agent
|
||||
role:hsOfficePerson.admin --> role:hsOfficePartner.agent
|
||||
role:hsOfficeContact.admin --> role:hsOfficePartner.agent
|
||||
|
||||
role:hsOfficePartner.tenant[partner.tenant]
|
||||
%% incoming
|
||||
role:hsOfficePartner.agent --> role:hsOfficePartner.tenant
|
||||
%% outgoing
|
||||
role:hsOfficePartner.tenant --> role:hsOfficePerson.guest
|
||||
role:hsOfficePartner.tenant --> role:hsOfficeContact.guest
|
||||
|
||||
role:hsOfficePartner.guest[partner.guest]
|
||||
%% permissions
|
||||
role:hsOfficePartner.guest --> perm:hsOfficePartner.view{{partner.view}}
|
||||
%% incoming
|
||||
role:hsOfficePartner.tenant --> role:hsOfficePartner.guest
|
||||
end
|
||||
```
|
||||
|
Loading…
Reference in New Issue
Block a user